Need help on this issue, I tried to configure the SD WAN routes destination to use SD WAN profile, but the traffic keep going through default. I have tried to disable the Underlay SD WAN route and access speedtest.net (I put speedtest.net as destination…

Hi all, I'm using OSPF but don’t want to redistribute all routes. On Cisco, I would probably use a route map to filter which routes need to be advertised. Here with XGS, I have unchecked "Redistribute connected" and "Redistribute static." I’m using…

We have a /29 subnet from our ISP. I want to use a dedicated public address for our guest network traffic. I've added an alias on the PPPoE port and thought I could then just use an SD-WAN rule to route the traffic, but the alias doesn't appear in the…

Hello, I found a solution where IPSec networks are distributed via OSPF and would like to know if this is correct? Can I use this in a productive environment? 1. SSH -> 4. Device Console 2. system ipsec_route add net 192.168.123.0/255.255.255.0 tunnelname…

I'm having an issue where we have two vendor routers that need to be highly available to all branch and data center locations (No changes permitted on the vendor R1 and R2) The networks at all the branch locations consist of a Sophos XG135 as the Gateway…

Hello World, I have to Internet gateways from my ISP as part of a package deal. I would like to use one internet gateway as my production traffic and the other gateway as my lab traffic. None of the resources behind need to talk to each other. I just…

clear 840 / 5.000 Übersetzungsergebnisse Übersetzung Is there a way to delay the failback in the event of a WAN failover? Our customer gets his Internet access…

Hello everybody! Right now I have the situation where I want to have multiple public Servers behind a sophos virtual firewall. For the Sophos i have a seperate public IP. I have a public IP Subnet for the servers that is routed via the public IP of…

Hi there, we have a /64 subnet (with gateway) and a /56 assigned by the ISP. No PD in place. I've assigned an address from the /64 subnet together with the gateway to the WAN interface, which is now reachable via IPv6. I'd like to assign IPv6 Addresses…

Hello, I'm not an expert (for the moment) on Sophos. For a customer that has an XG Firewall, he asked to configure a SSL VPN connection. As I already done this some years ago on a privous Sophos Router, it should be possible ;-) But the LAN/WAN…

HELLO When we create a routing rule (or other items that do not support renaming), and feel that the name is unreasonable or needs to be changed for other reasons, we find that the name cannot be modified and can only be rebuilt or copied. This is a…

Kindly help. I configured a load balance on two ISP links for my users. Among those users, I want some specific users to make use of just one of the ISPs only whole the rest use both.

Hello Team, I've successfully configured the Sophos XGS in my security account and routed internal traffic via the Sophos LAN ENI instead of using a NAT gateway, which is functioning well. Now, I have another workload VPC in a separate account that…

Hello, we use 2 internet lines and have set up 2 route based vpn tunnels. BGP is used as the routing protocol. What settings can we make so that the 1st internet connection is used first and the 2nd internet connection is only used if this is not available…

Hello. I wonder if Sophos Firewall could be set up to have each VLAN having different WAN gateways ? For example, VLAN 1 will go to WAN 1 and VLAN 2 will go to WAN 2, so that there will virtually be two networks. Originally, I was thinking to set…

Hello all, I have several firewalls claimed on Sophos Central and SD-WAN connection groups among them. One of the branches will be without power for about two weeks, so the firewalls and tunnels to this branch will be offline. Is there a way to…

Hello everyone I am struggeling with the following: The customer has microtik router that connects via wireguard VPN to a remote Windows Server in a Datacentre. The Microtik router is the VPN Client, the Windows Server is the VPN Server. The employees…

This isn´t really a question but rather some strange behavior I ran into when updating a customer´s RED-Devices from v3.0.008 to v3.0.009. Environment: - Sophos XG2300 running SFOS 20.0.0 GA-Build222 - Multiple RED20 and RED60 Devices (6 total)…

1. We have a 2 XGS connected via a private ISP fiber and the interfaces are LAN / GIG. 2. For resiliency we have a IPsec Tunnel interface between the same, using a disparate ISPs at each location VPN/GIG. We have been using OSPF for all of our routing…

When I add a startic route, I lose connectivity to devices connected on the other side of the site to site vpn yet the connection status of the vpn remains connected

Hello guys Fiber Interlink Network 1 should be able to communicate to network 2 through the fiber link Please assist in configuring

I wanted to understand how does Sophos firewall measure Latency, Jitter and Packet loss. Is it measuring these metrics between the firewall and the WAN gateway or between the firewall and an external endpoint, if it's the second case then what is this…

Hello everyone, I've searched quite a bit in the Sophos Firewall and i've turned up nothing. Where do i configure MD5 authentication for OSPF? I do not mean enable MD5 authentication. I'm asking where i go to set the Message Digest Key and password…

We have 2 firewalls at the main office in an active-passive HA pair. We just purchased another smaller XGS 107 to be used at a remote branch as a start to our SD-WAN project (we are going to be purchasing more firewalls to add later, but want to use this…

Hello, we are using 2 xg firewalls and have connected them via a route based vpn tunnel. We then configured the routing via BGP. From the branch office we reach the servers at the main location via ping. However, if we want to reach a server in the…